[rt-users] CLI with "SSLVerifyClient require" was Re: CLI issues...
Jonathan D. Proulx
jon at csail.mit.edu
Wed Oct 26 16:31:39 EDT 2005
On Wed, Oct 26, 2005 at 04:06:37PM -0400, Alex Vandiver wrote:
:On Wed, 2005-10-26 at 12:53 -0400, Jesse Vincent wrote:
:> It uses perl's lib-www-perl. Which, iirc, handles client certs. But I
:> don't remember how.
:
:It's actually Crypt::SSLeay which has the support. Set the
:HTTPS_CLIENT_CERT environment variable to the .pem file, and you should
:be all set. See
:http://search.cpan.org/~chamas/Crypt-SSLeay-0.51/SSLeay.pm#CLIENT_CERTIFICATE_SUPPORT
: - Alex
Hmmm, I had libio-socket-ssl installed which seemed to get me SSL
connections (or seemed to as the error message changed).
Crypt::SSLeay also claims to support pkcs12 like mozilla loves to
export with:
$ENV{HTTPS_PKCS12_FILE} = ���certs/pkcs12.pkcs12���;
$ENV{HTTPS_PKCS12_PASSWORD} = ���PKCS12_PASSWORD���;
One wonders why I'd bother with a password if I need to keep it in my
ENV...not exactly an RT issue but if you know a fix for that I'm all
ears.
Thanks,
-Jon
More information about the rt-users
mailing list